πΌ CP-4 Contingency Plan Testing (L)(M)(H)
- Contextual name: πΌ CP-4 Contingency Plan Testing (L)(M)(H)
- ID:
/frameworks/fedramp-moderate-security-controls/cp/04 - Located in: πΌ Contingency Planning
Descriptionβ
a. Test the contingency plan for the system [FedRAMP Assignment: at least annually] using the following tests to determine the effectiveness of the plan and the readiness to execute the plan: [FedRAMP Assignment: functional exercises].
b. Review the contingency plan test results; and
c. Initiate corrective actions, if needed.
CP-4 Additional FedRAMP Requirements and Guidance:
(a) Requirement: The service provider develops test plans in accordance with NIST Special Publication 800-34 (as amended); plans are approved by the JAB/AO prior to initiating testing.
(a) Requirement: The service provider must include the Contingency Plan test results with the security package within the Contingency Plan-designated appendix (Appendix G, Contingency Plan Test Report).
Similarβ
- Sections
/frameworks/fedramp-high-security-controls/cp/04
- Internal
- ID:
dec-c-9c9d9451
- ID:
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ FedRAMP High Security Controls β πΌ CP-4 Contingency Plan Testing (L)(M)(H) | 2 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ CP-4(1) Coordinate with Related Plans (M)(H) |